Opened 2 years ago
Closed 15 months ago
#16507 closed defect (bug) (fixed)
Theme editor doesn't support themes with special characters in name
| Reported by: |
|
Owned by: | |
|---|---|---|---|
| Priority: | normal | Milestone: | 3.4 |
| Component: | Administration | Version: | 3.0.5 |
| Severity: | normal | Keywords: | has-patch |
| Cc: |
Description
The internal $themes array uses escaped theme names as indexes, while the name of the theme to edit is pulled directly into $theme from $_POST without any escaping.
Attachments (1)
Change History (3)
Note: See
TracTickets for help on using
tickets.
Patched with wp_kses_normalize_entities() since theme names go through kses